Closed alex0112 closed 2 months ago
Hi @alex0112
Thank you for the report. We have this on our internal todo list currently, we'll get back to you as soon as a fix for this is live!
Hey @alex0112! This should be resolved now in the latest release. Now, you can only create machine identities and client secrets with a max TTL of 10 years
Describe the bug
Setting a high TTL on a machine identity secret renders the app inoperable
To Reproduce
Steps to reproduce the behavior:
Expected behavior
Either a limit on the TTL
Screenshots
Platform you are having the issue on:
Web App (Firefox). Self Hosted.
Additional context
Purely speculation on my part: but it seems that a bad value for the TTL gets written to the database and the front end app is unable to handle the high value when it tries to render the token again. At least that seems consistent with my observations.